Glossary of Regulatory Terms

A

Appendix A (Appx. A)
The Department of Homeland Security developed a chemical of interest list (Appendix A) that includes chemicals that present one or more security issues. DHS has identified three security issues related to chemicals: release, theft or diversion and sabotage or contamination.
See Also:
COI,
CSAT,
CVI,
HITRAC,
SSP,
SVA,
TS

Area Sources (AREA SOURCES)
Area Sources are those sources that emit less than 10 tons annually of a single hazardous air pollutant or less than 25 tons annually of a combination of hazardous air pollutants.
See Also:

Assistant Secretary of Infrastructure Protection (ASIP)
Within the Department of Homeland Security (DHS) Office of Infrastructure Protection (IP), the ASIP leads the coordinated national effort to reduce the risk to the Nation’s critical infrastructures and key resources (CIKR) from terrorist acts, and to strengthen national preparedness, response, and recovery in the event of an attack, natural disaster, or other emergency. Currently, Todd Keil serves as the ASIP.
See Also:
CFATS,
CIKR,
CIPAC,
CSCC,
DHS,
GCC,
HSPD-7,
ISCD,
NIPP,
POD

C

Chemical Facility Anti-Terrorism Standards (CFATS)
CFATS, enacted by Section 550 of the Homeland Security Appropriations Act of 2007, was published in the Federal Register on April 4, 2007. The rule authorizes implementing risk-based performance standards for the Nation's high-risk chemical facilities. Under the rule, if DHS notifies a facility it is “high risk,” officials will have 60 days in which to file Vulnerability Assessments and 120 days in which to file Site Security Plans. DHS will follow up with site inspections and audits.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

Chemical Assessment and Management Program (ChAMP)
The US commitment under the Security and Prosperity Partnership (SPP) with Canada and Mexico. The EPA is implementing this program that will prioritize an estimated 6,750 chemicals produced or imported in quantities of 25,000 lbs. or more a year to determine what further action may be necessary.
See Also:

Critical Infrastructure Information Act of 2002 (CII Act of 2002)
Part of the Homeland Security Act of 2002, the CIIA consists of a group of provisions addressing circumstances under which DHS may obtain, use, and disclose critical infrastructure information as part of a critical infrastructure protection program. Under provisions of the CII Act, information submitted voluntarily to DHS per those provisions will be protected from public disclosure until and unless the Protected Critical Infrastructure Information (PCII) Program Office determines the information does not meet the requirements for PCII. If validated as PCII, the information will remain exempt from public disclosure.
See Also:
CVI,
PCII

Critical Infrastructure and Key Resources (CIKR)
CIKR includes the assets, systems, networks, and functions that provide vital services to the Nation. CIKR refers to assets, systems, and networks, whether physical or virtual, so vital to the United States that the incapacity or destruction of such assets, systems, or net¬works would have a debilitating impact on security, national economic security, public health or safety, or any combina¬tion of those matters.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
TS

Critical Infrastructure Protection (CIP)
Programs and activities to protect systems and assets, whether physical or virtual, so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitation impact on security, national economic security, national public health or safety, or any combination of those matters.
See Also:

Critical Infrastructure Partnership Advisory Council (CIPAC)
CIPAC, which has been exempted from the requirements of the Federal Advisory Committee Act (FACA), is the mechanism to allow meaningful dialogue on key critical infrastructure protection issues and agreement on mutual action between government and owner/operator entities. CIPAC is a non-decisional body and includes sector members and government members. Sector members are the members of that sector’s SCC that are owners and/or operators and the trade associations that represent them. Government members are the Federal, State, local, and tribal government agencies (or their representative bodies) that comprise the GCC for each sector.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

Chemical of Interest (COI)
Chemical of interest is a term DHS uses that includes chemicals on their Appendix A list which DHS has identified as a security risk based on release, theft or diversion and sabotage or contamination.
See Also:
CIPAC,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

Chemical Sector Coordinating Council (CSCC)
The counterpart to a CIKR sector’s Government Coordinating Council (GCC), these councils are self-organized, self-led, broadly representative of owners and operators (and their associations) within the Chemical sector, and are focused on homeland security and critical infrastructure protection. CSCCs serve as the government’s principal point of entry into each sector for developing and coordinating a wide range of CIKR protection activities and issues.
See Also:
CIKR,
GCC

Cyber Storm II (CSII)
Cyber Storm II represents the largest government-sponsored cyber security exercise of its kind, and it incorporated international, Federal, State, and local government officials, as well as private sector players, including CIKR sectors (IT, Communications, Chemical, and Transportation). The DHS-led exercise focused on a cyber-specific scenario that rises to the level of an Incident of National Significance. This exercise evaluated the ability of the public and private sector to provide a coordinated response to a large-scale cyber event.
See Also:
CIKR,
DHS

Chemical-terrorism Vulnerability Information (CVI)
CVI is information that was developed and/or submitted to DHS pursuant to Section 550(c) and the CFATS regulation. Under CFATS, facilities shall designate information about the facility that is specified in 6 CFR § 27.400(b)(1)-(8) as CVI.
See Also:
COI,
CSAT,
HITRAC,
ISCD,
SSP,
TS

D

Department of Homeland Security (DHS)
The Department of Homeland Security (DHS) was established by the Homeland Security Act of 2002. The primary mission of DHS is to prevent terrorist attacks within the United States; reduce the vulnerability of the United States to terrorism; and minimize the damage, and assist in the recovery, from terrorist attacks that do occur within the United States. DHS is the lead agency for the overall national effort to enhance CIKR protection. In this role, DHS establishes uniform policies and approaches for protection activities, and tracks performance and progress in program implementation. The DHS is also the lead agency for the overall assessment of the terrorist threat to the Nation.
See Also:
CIPAC,
COE,
COI,
CSAT,
CSCC,
CVI,
DOT,
EPA,
GCC,
HITRAC,
HMTA,
HSPD-7,
ISCD,
NIPP,
OSHA,
POD,
SSP,
SVA,
TS

F

Freedom of Information Act (FOIA)
The U.S. Freedom of Information Act (FOIA) is a law ensuring public access to U.S. government records. FOIA carries a presumption of disclosure; the burden is on the government - not the public - to substantiate why information may not be released. Upon written request, agencies of the U.S. government are required to disclose those records, unless they can be lawfully withheld from disclosure under one of nine specific exemptions in the FOIA. This right of access is ultimately enforceable in Federal court.
See Also:
DHS

G

Government Coordinating Council (GCC)
GCCs are comprised of representatives across various levels of government as appropriate to the security landscape of each CIKR sector. Chaired by the designated Sector-Specific Agency (SSA), each GCC is responsible for ensuring appropriate representation on the council and providing cross-sector coordination with State, local, and tribal governments. These councils work with the Sector Coordinating Council (SCC) to plan, implement, and execute sufficient and necessary sector-wide security to support the Nation’s homeland security mission.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

H

Homeland Infrastructure Threat and Risk Analysis Center (HITRAC)
HITRAC is a DHS entity that conducts integrated threat analysis for all CIKR sectors. HITRAC brings together intelligence and infrastructure specialists to ensure a complete and sophisticated understanding of the risks to U.S. CIKR. HITRAC works in partnership with the U.S. Intelligence Community and national law enforcement to integrate and analyze intelligence and law enforcement information on the threat. HITRAC also works in partnership with the SSAs and owners and opera¬tors to ensure its specialists integrate their expertise on infrastructure opera¬tions into its threat analysis. HITRAC coordinates closely with security partners outside the Federal Government through the SCCs, GCCs, and ISACs to ensure its analytic products are relevant to security partner needs, and that they are accessible to the partners who need them.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

High Production Volume (HPV)
High Production Volume (HPV) chemicals are those which are manufactured in, or imported into, the United States in amounts equal to or greater than one million pounds per year. The term is often used to refer to the HPV Challenge Program.
See Also:
OPPTS

Homeland Security Advisor (HSA)
State Homeland Security Advisors are responsible for overseeing all State homeland security activities, including the coordination of statewide efforts to detect, prevent, respond to, and manage the consequences of a terrorist attack or other critical incidents.
See Also:

Homeland Security Advisory Council (HSAC)
The HSAC is a FACA committee that provides advice and recommendations to the Secretary on matters related to homeland security. The Council is comprised of leaders from State and local government, first responder communities, the private sector, and academia.
See Also:

Homeland Security Information Network (HSIN)
HSIN is a national communications platform that allows the flow of real-time information among DHS, State, local, and private sector partners at the Sensitive-but-Unclassified level.
See Also:
CSAT

Homeland Security Operations Center (HSOC)
The HSOC serves as the Nation’s nerve center for information sharing and domestic incident management—dramatically increasing the vertical coordination between Federal, State, territorial, tribal, local, and private sector partners. The HSOC collects and fuses information from a variety of sources everyday to help deter, detect, and prevent terrorist acts. Operating 24/7/365, the HSOC provides real-time situational awareness and monitoring of the homeland, coordinates incidents and response activities, and, in conjunction with the DHS Office of Information Analysis, issues advisories concerning threats to homeland security, as well as specific protective measures. The HSOC shares information on domestic incident management with Emergency Operations Centers at all levels through the Homeland Security Information Network (HSIN).
See Also:
DHS,
HSIN

Homeland Security Presidential Directive-7 (HSPD-7)
HSPD-7 establishes the basis for a national coordinated approach to critical infrastructure protection and identifies the 17 CIKR sectors. (Note: an 18th sector – Critical Manufacturing – was formally recognized by the Secretary in September 2008.) The primary intent of HSPD-7 is to prevent the exploitation, incapacitation, or destruction of these infrastructures and resources. However, a secondary goal is to foster the development of methods and technologies that can minimize the impact if an adverse event actually occurs. Federal departments and agencies have been instructed to work with State and local governments, and with the private sector, to accomplish the objectives laid out in this directive.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

I

Office of Infrastructure Protection (IP)
Within DHS, IP leads the coordinated national effort to reduce risk to our CIKR posed by acts of terrorism. In doing so, DHS increases the Nation’s level of preparedness and the ability to respond and quickly recover in the event of an attack, natural disaster, or other emergency. IP facilitates the identification, prioritization, coordination, and protection of CIKR in support of Federal, State, local, territorial, and tribal governments, as well as the private sector and international entities. By ensuring the sharing of information with its security partners, IP communicates threats, vulnerabilities, incidents, potential protective measures, and best practices that enhance protection, response, mitigation, and restoration activities across the Nation.
See Also:
CIKR,
CIPAC,
CSCC,
DHS,
GCC,
HSPD-7,
ISCD,
NIPP

Information Sharing and Analysis Center (ISAC)
Privately owned and operated, ISACs are information-sharing mechanisms that disseminate information to sector stakeholders, often to stakeholders who are paying members of the ISAC.
See Also:

Information Sharing Environment (ISE)
The ISE is focused on sharing information related to terrorism, homeland security, and law enforcement. The ISE will be comprised of policies, procedures, and technologies linking the resources (people, systems, databases, and information) of Federal, State, local, and tribal entities and the private sector to facilitate terrorism information sharing, access, and collaboration.
See Also:

Inventory Update Rule (IUR)
Every 5 years EPA requires manufacturers and importers of TSCA inventory substances to report on production and import volume along with exposure information.
See Also:
OPPTS,
TSCA

L

Leak Detection and Repair (LDAR)
Leak detection and repair (LDAR) regulations affect almost all U.S. industry processes in which volatile organic compounds (VOCs) are used or manufactured.
See Also:
CAA,
MON

M

Major Sources (MAJOR SOURCES)
Major Sources are defined as sources that emit 10 tons per year of any of the listed toxic air pollutants, or 25 tons per year of a mixture of air toxics. These sources may release air toxics from equipment leaks, when materials are transferred from one location to another, or during discharge through emissions stacks or vents.
See Also:

Miscellaneous Organic NESHAPS (MON)
The Miscellaneous Organic National Emission Standard for Hazardous Air Pollutants (MON) is intended to cover all organic chemical processes not covered by other standards such as the Hazardous Organic NESHAP or "HON". It was established under the aegis of the Clean Air Act Amendments, and establishes emissions standards for a variety of processes relevant to the chemical industry.
See Also:
CAA,
MACT,
NESHAP

Memorandum of Understanding (MOU)
An MOU is a legal document describing a bilateral agreement between parties. It expresses a convergence of will between the parties, indicating an intended common line of action, rather than a legal commitment. Each CIKR Sector with an active HSIN portal has an MOU with DHS.
See Also:
CIKR,
DHS,
HSIN

N

North American Industry Classification System (NAICS)
The North American Industry Classification System (NAICS) has replaced the U.S. Standard Industrial Classification (SIC) system as the official means of classifying industrial activity in the US. NAICS industries are identified by a 6-digit code, in contrast to the 4-digit SIC code. The chemical manufacturing sectorcodes typically begin with the digits "325"
See Also:
SIP

National Communication System (NCS)
Within DHS, NCS is responsible for coordinating restoration of national security and emergency preparedness telecommunications services and facilities.
See Also:
DHS

National Cyber Security Division (NCSD)
Within DHS, NCSD works collaboratively with public, private, and international entities to secure cyberspace and America’s cyber assets.
See Also:
DHS,
NCS

National Environmental Performance Track (NEPT)
The National Environmental Performance Track (NEPT) program is a voluntary partnership program that recognizes and rewards private and public facilities that demonstrate strong environmental performance beyond current requirements.
See Also:

National Infrastructure Advisory Council (NIAC)
The NIAC is a FACA committee that provides the President through the Secretary of Homeland Security with advice on the security of the critical infrastructure sectors and their information systems. The council is composed of a maximum of 30 members, appointed by the President from private industry, academia, and State and local government.
See Also:

National Infrastructure Coordinating Center (NICC)
The NICC is one of four sub-elements of the DHS National Operations Center (NOC), which serves as the Nation’s hub for domestic incident management, operational coordination, and situational awareness. As a CIKR-focused element of the NOC, the NICC, a 24/7/365 watch operations center, provides a centralized mechanism and process for information sharing and coordination between the government, SCCs, GCCs, and other industry partners.
See Also:
CIKR,
CSCC,
GCC

National Incident Management System (NIMS)
DHS developed NIMS so first responders from different jurisdictions and disciplines have the ability to work together better to respond to natural disasters and emergencies, including acts of terrorism. NIMS benefits include a unified approach to incident management; standard command and management structures; and emphasis on preparedness, mutual aid, and resource management.
See Also:

National Infrastructure Protection Plan (NIPP)
The NIPP provides a coordinated approach to CIKR protection roles and responsibilities for Federal, State, local, tribal, and private sector security partners. The NIPP sets national priorities, goals, and requirements for effective distribution of funding and resources which will help ensure that our government, economy, and public services continue in the event of a terrorist attack or other disaster.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
POD,
SSP,
SVA,
TS

National Level Exercise (NLE)
NLE 09 is designated as a Tier I National Level Exercise. Tier I exercises (formerly known as the Top Officials exercise series or TOPOFF) are conducted annually in accordance with the National Exercise Program (NEP), which serves as the nation's overarching exercise program for planning, organizing, conducting and evaluating national level exercises. The NEP was established to provide the U.S. government, at all levels, exercise opportunities to prepare for catastrophic crises ranging from terrorism to natural disasters.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SSP,
SVA,
TS

National Response Framework (NRF)
The NRF is a guide to how the Nation conducts all-hazards response. It is built upon scalable, flexible, and adaptable coordinating structures to align key roles and responsibilities across the Nation, linking all levels of government, nongovernmental organizations, and the private sector. It is intended to capture specific authorities and best practices for managing incidents that range from the serious but purely local, to large-scale terrorist attacks or catastrophic natural disasters.
See Also:

National Security Telecommunications Advisory Committee (NSTAC)
The NSTAC is a FACA committee composed of up to 30 industry chief executives representing the major communications and network service providers and information technology, finance, and aerospace companies. The NSTAC provides industry-based advice and expertise to the President on issues and problems related to implementing national security and emergency preparedness communications policy. Since its inception in 1982, the NSTAC has addressed a wide range of policy and technical issues regarding communications, information systems, information assurance, critical infrastructure protection, and other NS/EP communications concerns.
See Also:

P

Protected Critical Infrastructure Information program (PCII)
DHS designed the PCII Program to encourage private industry to share its sensitive security-related business information with the Federal government. An information-protection tool, PCII facilitates information sharing between government and the private sector. DHS and other Federal, State and local analysts use PCII to focus primarily on: (1) analyzing and securing critical infrastructure and protected systems; (2) identifying vulnerabilities and developing risk assessments; and (3) enhancing recovery preparedness measures.
See Also:
CVI,
DHS

Partnership for Critical Infrastructure Security (PCIS)
PCIS is a non-profit organization formed in 1999 to address cross-sector critical infrastructure protection and interdependency issues of concern to critical infrastructure owners and operators.
See Also:

Premanufacture Notice (PMN)
A PMN is a notice that must be submitted to EPA at least 90 days prior to the manufacture or import of a new chemical. A new chemical is considered a chemical that is not on the TSCA inventory. There are other types of notices that may be submitted to EPA depending on whether you fall under an exemption. For assistance in navigating the new chemical review process the Society of Chemical Manufacturers (SOCMA) offers a service called PMNPro. To learn more about SOCMA's PMNPro service, please contact us at PMNPro@socma.com or call (202) 721-4158.
See Also:
TSCA

S

Science and Technology Directorate (S&T)
The S&T Directorate is the primary research and development arm of DHS. S&T provides Federal, State and local officials with the technology and capabilities to protect the homeland.
See Also:

Site Assistance Visits (SAV)
Information derived from SAVs are used to create three series of Sector-specific reports that are disseminated to owners, operators, security planners and local law enforcement officials to integrate into their respective risk management processes. The Common Characteristics and Vulnerabilities reports highlight common issues so relevant stakeholders can address possible vulnerabilities and improve overall site security. Potential Indicators of Terrorist Attack reports give further insight to owners, operators, and law enforcement officials on how to better protect facilities and, in turn, thousands of Americans in surrounding communities. Protective Measure reports further identify categories of generally applicable protective measures, discuss implementation of select protective measures, and recommend protective measures for implementation based on the Homeland Security Advisory System threat level.
See Also:
RBPS,
SSP

Small Business Assistance Program (SBAP)
Established by the Clean Air Act Amendments of 1990, this program is designed to assist small businesses in compliance with new air toxics regulations as well as other environmental regulation.
See Also:
CAA

Standard Industrial Classification (SIC)
The Standard Industrial Classification system was replaced by the North American Industry Classification System (NAICS) as the official means of classifying industrial activities in the US. Nonetheless, SIC codes are often found in many regulatory definitions. Most chemical manufacturing processes fall under the 28xx series of SIC codes (NAICS 325xxx)
See Also:
NAICS

State Implementation Plan (SIP)
A plan developed by states under the terms of the Clean Air Act that directs state progress towards meeting ambient air quality. The state, in turn, will use the SIP as a standard for regulating private facility air emissions.
See Also:
CAA,
NAAQS

Sector-Specific Agency (SSA)
SSA refers to those Federal Departments and Agencies identified under HSPD-7 as responsible for the protection activities in specified CIKR sectors. SSAs provide the subject matter and industry-specific expertise and relationships to help ensure infrastructure protection within the specific sectors.
See Also:
CIKR,
HSPD-7

Sector-Specific Plan (SSP)
SSPs complement and extend the NIPP Base Plan and detail the application of the NIPP framework specific to each CIKR sector. SSAs develop the SSPs in close collaboration with other public and private sector security partners.
See Also:
COI,
CSAT,
CVI,
HITRAC,
ISCD,
SSP,
SVA,
TS

Site Security Plan (SSP)
CFATS covered facilities will have to complete and submit a Site Security Plan (SSP) with help from the RBPS guidance document described above. Covered facilities will have 120 days from the time of the written notification to complete and submit an SSP. The SSP will basically (1) address each vulnerability identified in the facility's SVA, (2) describe how they intend to address the applicable RBPS standards and potential modes of terrorist attack.
See Also:
CIPAC,
COI,
CSAT,
CSCC,
CVI,
DHS,
GCC,
HITRAC,
HSPD-7,
ISCD,
NIPP,
POD,
SVA,
TS